|
307511
|
- |
|
ibm
|
db2
|
IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and Windows does not properly revoke role membership from groups, which allows remote authenticated users to execute non-DDL statements by le…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1846
|
2024-11-21 10:27 |
2011-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307512
|
- |
|
microsoft
|
silverlight
|
Multiple memory leaks in the DataGrid control implementation in Microsoft Silverlight 4 before 4.0.60310.0 allow remote attackers to cause a denial of service (memory consumption) via an application …
|
CWE-399
Resource Management Errors
|
CVE-2011-1845
|
2024-11-21 10:27 |
2011-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307513
|
- |
|
microsoft
|
silverlight
|
Memory leak in Microsoft Silverlight 4 before 4.0.60310.0 allows remote attackers to cause a denial of service (memory consumption) via an application involving a popup control and a custom Dependenc…
|
CWE-399
Resource Management Errors
|
CVE-2011-1844
|
2024-11-21 10:27 |
2011-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307514
|
- |
|
banu
|
tinyproxy
|
Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow remote attackers to bypass intended access restrictions in opportunistic circumstances via a TCP connection, related to improper handl…
|
CWE-189
Numeric Errors
|
CVE-2011-1843
|
2024-11-21 10:27 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307515
|
- |
|
ubuntu
|
language-selector
|
dbus_backend/lsd.py in the D-Bus backend in language-selector before 0.6.7 does not validate the arguments to the (1) SetSystemDefaultLangEnv and (2) SetSystemDefaultLanguageEnv functions, which allo…
|
CWE-20
Improper Input Validation
|
CVE-2011-1842
|
2024-11-21 10:27 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307516
|
- |
|
mojolicious
|
mojolicious
|
Cross-site scripting (XSS) vulnerability in the link_to helper in Mojolicious before 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1841
|
2024-11-21 10:27 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307517
|
- |
|
ibm
|
rational_build_forge
|
IBM Rational Build Forge 7.1.0 uses the HTTP GET method during redirection from the authentication servlet to a PHP script, which makes it easier for context-dependent attackers to discover session I…
|
CWE-200
Information Exposure
|
CVE-2011-1839
|
2024-11-21 10:27 |
2011-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307518
|
- |
|
ibm
|
tivoli_directory_server
|
The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitiv…
|
CWE-255
Credentials Management
|
CVE-2011-1822
|
2024-11-21 10:27 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307519
|
- |
|
ibm
|
tivoli_directory_server
|
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010 on Windows allows remote authenticated users to cause a denial of service (daemon hang) via a cn=changelog search.
|
CWE-399
Resource Management Errors
|
CVE-2011-1821
|
2024-11-21 10:27 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307520
|
- |
|
ibm
|
tivoli_directory_server
|
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.…
|
CWE-200
Information Exposure
|
CVE-2011-1820
|
2024-11-21 10:27 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
